Lucene search
K

22 matches found

OSV
OSV
added 2026/06/24 8:16 a.m.2 views

UBUNTU-CVE-2026-52917

In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dumpone path The SCTP exact sockdiag lookup can hold a transport reference, block on locksocksk, and then resume after sctpassociationfree has marked the association dead and freed its bin...

7.1CVSS5.6AI score0.00126EPSS
Exploits0References11
EUVD
EUVD
added 2026/06/24 7:14 a.m.8 views

EUVD-2026-38720

In the Linux kernel, the following vulnerability has been resolved: sctp: diag: reject stale associations in dumpone path The SCTP exact sockdiag lookup can hold a transport reference, block on locksocksk, and then resume after sctpassociationfree has marked the association dead and freed its bin...

5.7AI score0.00126EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: net/smc: fixed a general protection fault in smcdiagdump The syzbot report a crash: Oops: general protection fault, likely for a non-canonical address 0xfbd5a5d5a0000003: 0000 1 SMP KASAN NOPTI KASAN: possibly wild-memory-acce...

6AI score0.00166EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011203)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011203 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in...

5.8AI score0.00211EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/17 12:30 a.m.3 views

SUSE CVE-2025-40357

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix general protection fault in smcdiagdump The syzbot report a crash: Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 1 SMP KASAN NOPTI KASAN: maybe wild-memory-access in rang...

6.1CVSS6.4AI score0.00166EPSS
Exploits0References10
NVD
NVD
added 2025/12/16 2:15 p.m.2 views

CVE-2025-40357

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix general protection fault in smcdiagdump The syzbot report a crash: Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 1 SMP KASAN NOPTI KASAN: maybe wild-memory-access in rang...

0.00166EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/16 2:15 p.m.2 views

CVE-2025-40357

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix general protection fault in smcdiagdump The syzbot report a crash: Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 1 SMP KASAN NOPTI KASAN: maybe wild-memory-access in rang...

5.7AI score0.00166EPSS
Exploits0References10
OSV
OSV
added 2025/12/16 2:15 p.m.2 views

UBUNTU-CVE-2025-40357

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix general protection fault in smcdiagdump The syzbot report a crash: Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 1 SMP KASAN NOPTI KASAN: maybe wild-memory-access in rang...

5.7AI score0.00166EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/12/16 1:30 p.m.24 views

CVE-2025-40357 net/smc: fix general protection fault in __smc_diag_dump

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix general protection fault in smcdiagdump The syzbot report a crash: Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 1 SMP KASAN NOPTI KASAN: maybe wild-memory-access in rang...

0.00166EPSS
Exploits0References3
CVE
CVE
added 2025/12/16 1:30 p.m.9 views

CVE-2025-40357

CVE-2025-40357 affects the Linux kernel net/smc subsystem, fixing a general protection fault in __smc_diag_dump reported by syzbot. The description states the fault occurs during diag dump processing and that the fix involves removing the INET_PROTOSW_ICSK flag due to an incorrect cast of smc_soc...

6AI score0.00166EPSS
Exploits0References3
OSV
OSV
added 2025/12/16 1:30 p.m.2 views

CVE-2025-40357 net/smc: fix general protection fault in __smc_diag_dump

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix general protection fault in smcdiagdump The syzbot report a crash: Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 1 SMP KASAN NOPTI KASAN: maybe wild-memory-access in rang...

6.3AI score0.00166EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memory access issue in smcdiagdump, which could cause the kernel to crash...

6.1AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/10 12:26 a.m.3 views

SUSE CVE-2025-40331

In the Linux kernel, the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock, sctpdiagdump - sctpforeachendpoint - sctpepdump make sure not to exceed bounds in case the address list has grown between buffer allocatio...

5.5CVSS6.8AI score0.00201EPSS
Exploits0References28
EUVD
EUVD
added 2025/12/09 6:30 p.m.4 views

EUVD-2025-201871

In the Linux kernel, the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock, sctpdiagdump - sctpforeachendpoint - sctpepdump make sure not to exceed bounds in case the address list has grown between buffer allocatio...

6.2AI score0.00201EPSS
Exploits0References9
OSV
OSV
added 2025/12/09 4:17 p.m.2 views

UBUNTU-CVE-2025-40331

In the Linux kernel, the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock, sctpdiagdump - sctpforeachendpoint - sctpepdump make sure not to exceed bounds in case the address list has grown between buffer allocatio...

6AI score0.00201EPSS
Exploits0References36
Cvelist
Cvelist
added 2025/12/09 4:9 a.m.26 views

CVE-2025-40331 sctp: Prevent TOCTOU out-of-bounds write

In the Linux kernel, the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock, sctpdiagdump - sctpforeachendpoint - sctpepdump make sure not to exceed bounds in case the address list has grown between buffer allocatio...

0.00201EPSS
Exploits0References8
OSV
OSV
added 2025/10/22 2:15 p.m.6 views

UBUNTU-CVE-2023-53731

In the Linux kernel, the following vulnerability has been resolved: netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in netlinkseterr 1 A similar issue was fixed in commit 1d482e666b8e "netlink: disable IRQs for netlinklocktable" in netlinklocktable This patch...

5.8AI score0.00211EPSS
Exploits0References12
CVE
CVE
added 2025/10/22 1:23 p.m.17 views

CVE-2023-53731

CVE-2023-53731 describes a potential deadlock in the Linux kernel netlink subsystem (netlink_set_err). SYZBOT reported a deadlock scenario involving nl_table_lock and a softirq-safe lock (local->queue_stop_reason_lock) that could invert IRQ lock ordering. Connected advisories confirm a fix add...

6.3AI score0.00211EPSS
Exploits0References9
OSV
OSV
added 2025/10/22 1:23 p.m.4 views

CVE-2023-53731 netlink: fix potential deadlock in netlink_set_err()

In the Linux kernel, the following vulnerability has been resolved: netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in netlinkseterr 1 A similar issue was fixed in commit 1d482e666b8e "netlink: disable IRQs for netlinklocktable" in netlinklocktable This patch...

6.5AI score0.00211EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.3 views

PT-2025-49784

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a time-of-check to time-of-use TOCTOU issue that can lead to an out-of-bounds write. This occurs in the sctp diag dump function, which calls sctp for each...

6.2AI score0.00201EPSS
Exploits0
Rows per page
Query Builder